Safeguarding rulesets are predefined lists of criteria denoting browsing behavior. These include a number of Guardian categories, both included and excluded, and a breach level. The following rulesets are available:

Abuse

Adult content

Bullying

Criminal activity

Radicalisation

Substance abuse

Suicide

Note: Categories belonging to each ruleset are subject to change, and are constantly evolving.

You can expand a breach entry to view the full browsing history for one hour either side of the breach. This is particularly useful when understanding the context of the breach:

Date / Time — The date and time the website was browsed to.

Category — The category the website falls into.

URL — The full URL of the website that was visited. Note that the query parameters of the URL are hidden until you mouse-hover the URL. The domain is highlighted in bold.

Search term — If a search was requested to any categorized terms, these are shown here, with the search engine used displayed in the Domain column.

Run the Full report for a single user as detailed previously.

Within the expanded table, click the Date / Time entry to see further information about that particular Safeguarding breach.

The selected breach is displayed in the middle of the Full traffic for <user> report, with sites visited listed above and below.

Use the Earlier and Later buttons to view more of the user's browsing history.

Show / Hide Web Furniture

"Web furniture" is the term given to all requests made to a web server to return content for a single web site. This includes, but is not limited to, stylesheets (CSS), JavaScript files, plugins, and so on. By default, all web furniture is hidden to make for a focused Full traffic report. However, you can choose to expand this view to show all received web furniture requests alongside the breach entry:

From the top of the Full traffic for <user> report, click the Hide web furniture toggle.

From time-to-time, you may want to exclude certain domains, URLs, or search terms from the Safeguarding Full report. For example, schools doing projects about Ancient Egyptian mythology may find the search term "Isis" being frequently reported as a breach as students may be searching for information about that particular goddess.

Any exclusions made on your Smoothwall are sent back to our content filter servers to help us improve our blocklists and web categorization.

Adding domains, URLs, and search terms to the exclusions list prevents them from being reported as a Safeguarding breach in the future.

Note: This is not the same as preventing users from browsing to those websites, or from using those search terms. This functionality is provided by Guardian — see Configuring a Block Page Policy .

At the time of writing, you cannot proactively add domains, URLs, or search terms to the exclusions list. These can only be added when they have been reported as a Safeguarding breach in the Full report. You can only exclude what has made the breach. Subdomains and top-level domains (TLDs) are not taken in to account.

For example, choosing to exclude www.google.com does not exclude www.google.co.uk, www.google.ie, and so on. Nor will any Google subdomains be excluded, such as mail.google.com, calendar.google.com, drive.google.com, and so on.

Additionally, exclusions are made on a per-ruleset basis. Because exclusions are added from the Safeguarding breach in the Full report, they are only listed against the ruleset that was breached, so excluding www.google.com from a Radicalisation ruleset does not exclude it from the Bullying, Suicide, or any other ruleset.

However, if you've clicked Exclude against a URL, you can choose to exclude either the whole URL, or just the domain segment. For example, if the breach was for the following URL:

http://thumbs.ebaystatic.com/images/g/JR4AAOSwwbdWHT~C/s-l140.jpg

you can choose whether to exclude the domain (http://thumbs.ebaystatic.com) or the whole URL (http://thumbs.ebaystatic.com/images/g/JR4AAOSwwbdWHT~C/s-l140.jpg).

Excluding a search term only excludes that search term. You cannot, and should not, exclude the search engine used.

Run the Full report and expand it for the user who has the Safeguarding breach.

Click Exclude for the relevant domain, URL, or search term.

From the Exclude window, confirm whether to exclude the domain, URL, or search term.

New exclusions are applied retrospectively to the Full report. You must rerun the Full report to update the results.

Either continue making exclusions, or rerun the Full report.

If you run the Full traffic report at this point (see Investigating a Breach Entry), the exclusions are applied to that view. It should be noted that closing that view does not rerun the Full report. This must be done separately to apply the exclusions to that view.